DanaBot تحليل

💳 Purchase Required

You need to purchase an additional CTI license to see detailed indicators.

IOB - Indicator of Behavior (39)

اللغة

en	40

البلد

us	32

الفاعلين

DanaBot	2
Conti	1
Gootkit	1
Gozi	1
Cobalt Strike	1

الاهتمام

النوع

Not Defined	16
Programming Language Software	4
Web Server	4
Content Management System	2
Application Server Software	2

المجهز

Not Defined	22
Microsoft	6
Apache	2
Allaire	2
Ruslan Communications	2

منتج

Microsoft IIS	4
WordPress	2
Apache Tomcat	2
CRIU	2
Allaire Forums	2

الثغرات

#	الثغرة	Base	Temp	0day	اليوم	ق�	معالجة	EPSS	CTI	CVE
1	Kodi Thumbnail اجتياز الدليل	5.4	4.9	$0-$5k	$0-$5k	High	Not Defined	0.03720	0.04	CVE-2017-5982
2	Crestron AM-100/AM-101 HTTP Endpoint file_transfer.cgi تجاوز الصلاحيات	9.8	9.7	$0-$5k	$0-$5k	Proof-of-Concept	Workaround	0.97308	0.02	CVE-2019-3929
3	Crestron AM-100/AM-101 libAwgCgi.so PARSERtoCHAR تلف الذاكرة	9.9	9.7	$0-$5k	$0-$5k	Not Defined	Workaround	0.01699	0.03	CVE-2019-3930
4	Apache Tomcat Chunked HTTP Request الحرمان من الخدمة	5.3	5.1	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.03844	0.00	CVE-2014-0075
5	Microsoft IIS IP/Domain Restriction تجاوز الصلاحيات	6.5	5.7	$25k-$100k	$0-$5k	Unproven	Official Fix	0.00817	0.43	CVE-2014-4078
6	WordPress URL Validator Redirect	6.6	6.5	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00509	0.03	CVE-2018-10101
7	Microsoft IIS سكربتات مشتركة	5.2	4.7	$5k-$25k	$0-$5k	Proof-of-Concept	Official Fix	0.00548	0.07	CVE-2017-0055
8	Microsoft Office RTF تلف الذاكرة	7.0	6.7	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.10418	0.00	CVE-2018-0797
9	Microsoft Office تلف الذاكرة	7.8	7.6	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.24727	0.00	CVE-2016-3364
10	CRIU Service Daemon الكشف عن المعلومات	6.7	6.5	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00042	0.00	CVE-2015-5231
11	vzctl DiskDescriptor.xml تجاوز الصلاحيات	5.3	5.1	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00068	0.03	CVE-2015-6927
12	OpenStack Neutron تجاوز الصلاحيات	4.3	4.1	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00194	0.00	CVE-2014-6414
13	Kerberos Ticket randkey تجاوز الصلاحيات	4.2	3.7	$0-$5k	$0-$5k	Unproven	Official Fix	0.00265	0.02	CVE-2014-5351
14	Zabbix Configuration Script userparameter_mysql.conf حقن إس كيو إل	7.2	6.5	$0-$5k	$0-$5k	Proof-of-Concept	Official Fix	0.02124	0.00	CVE-2016-4338
15	cPanel Script تجاوز الصلاحيات	5.3	4.8	$0-$5k	$0-$5k	Proof-of-Concept	Unavailable	0.00000	0.03
16	cPanel entropysearch.cgi Website الكشف عن المعلومات	5.3	4.8	$0-$5k	$0-$5k	Proof-of-Concept	Unavailable	0.00000	0.00
17	ZeroShell Net Services kerbynet تجاوز الصلاحيات	7.3	6.6	$0-$5k	$0-$5k	Proof-of-Concept	Not Defined	0.00000	0.03
18	BoZoN تجاوز الصلاحيات	6.3	5.7	$0-$5k	$0-$5k	Proof-of-Concept	Not Defined	0.00000	0.00
19	Pagekit Password تجاوز الصلاحيات	6.3	5.7	$0-$5k	$0-$5k	Proof-of-Concept	Official Fix	0.00000	0.00
20	PEAR HTTP_Upload Upload.php تجاوز الصلاحيات	7.3	6.6	$0-$5k	$0-$5k	Proof-of-Concept	Not Defined	0.00000	0.00

IOC - Indicator of Compromise (188)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

ID	عنوان بروتوكول الإنترنت	Hostname	ممثل	Identified	النوع	الثقة
1	5.8.55.205	carpbaboon.com	DanaBot	31/05/2021	verified	عالي
2	5.9.224.217	static.217.224.9.5.clients.your-server.de	DanaBot	04/08/2022	verified	عالي
3	5.189.253.131	ykfygylyfdtuk.jhy	DanaBot	29/10/2023	verified	عالي
4	5.189.253.176	svdjchfdmsohd.com	DanaBot	29/10/2023	verified	عالي
5	6.43.51.17		Danabot	02/03/2019	verified	عالي
6	8.209.99.230		DanaBot	18/12/2023	verified	عالي
7	8.222.178.224		DanaBot	28/03/2024	verified	عالي
8	23.106.122.14		DanaBot	04/08/2022	verified	عالي
9	23.106.123.224		DanaBot	20/04/2022	verified	عالي
10	23.106.123.249		DanaBot	04/03/2022	verified	عالي
11	23.254.129.180	hwsrv-1035456.hostwindsdns.com	DanaBot	15/04/2022	verified	عالي
12	23.254.133.7	client-23-254-133-7.hostwindsdns.com	DanaBot	27/03/2022	verified	عالي
13	23.254.134.53	hwsrv-1045495.hostwindsdns.com	DanaBot	22/03/2022	verified	عالي
14	23.254.144.209	client-23-254-144-209.hostwindsdns.com	DanaBot	03/06/2023	verified	عالي
15	23.254.164.106	hwsrv-978595.hostwindsdns.com	DanaBot	09/03/2022	verified	عالي
16	23.254.201.147	WIN-FRBTX5I65I.com	DanaBot	06/03/2022	verified	عالي
17	23.254.217.192	hwsrv-982289.hostwindsdns.com	DanaBot	26/03/2022	verified	عالي
18	23.254.226.52	client-23-254-226-52.hostwindsdns.com	DanaBot	22/02/2022	verified	عالي
19	23.254.226.136	box.sostenibilidadsocia.online	DanaBot	22/03/2023	verified	عالي
20	23.254.227.74	hwsrv-1042388.hostwindsdns.com	DanaBot	04/06/2023	verified	عالي
21	23.254.228.176	client-23-254-228-176.hostwindsdns.com	DanaBot	18/04/2022	verified	عالي
22	26.64.30.13		Danabot	02/03/2019	verified	عالي
23	31.214.157.12	mail.private-mail.nl	DanaBot	31/05/2021	verified	عالي
24	34.16.181.0	0.181.16.34.bc.googleusercontent.com	DanaBot	18/12/2023	verified	متوسط
25	34.22.151.45	45.151.22.34.bc.googleusercontent.com	DanaBot	28/03/2024	verified	متوسط
26	34.65.140.140	140.140.65.34.bc.googleusercontent.com	DanaBot	24/03/2024	verified	متوسط
27	34.73.147.86	86.147.73.34.bc.googleusercontent.com	DanaBot	24/03/2024	verified	متوسط
28	34.77.22.163	163.22.77.34.bc.googleusercontent.com	DanaBot	28/03/2024	verified	متوسط
29	34.90.104.246	246.104.90.34.bc.googleusercontent.com	DanaBot	12/01/2023	verified	متوسط
30	34.95.4.102	102.4.95.34.bc.googleusercontent.com	DanaBot	27/12/2022	verified	متوسط
31	34.105.203.100	100.203.105.34.bc.googleusercontent.com	DanaBot	05/01/2023	verified	متوسط
32	34.125.56.40	40.56.125.34.bc.googleusercontent.com	DanaBot	13/03/2024	verified	متوسط
33	34.129.5.173	173.5.129.34.bc.googleusercontent.com	DanaBot	13/08/2021	verified	متوسط
34	34.168.202.91	91.202.168.34.bc.googleusercontent.com	DanaBot	28/03/2024	verified	متوسط
35	34.247.234.201	ec2-34-247-234-201.eu-west-1.compute.amazonaws.com	DanaBot	12/01/2023	verified	متوسط
36	35.194.193.144	144.193.194.35.bc.googleusercontent.com	DanaBot	12/01/2023	verified	متوسط
37	35.199.99.16	16.99.199.35.bc.googleusercontent.com	DanaBot	05/01/2023	verified	متوسط
38	35.199.103.5	5.103.199.35.bc.googleusercontent.com	DanaBot	03/02/2023	verified	متوسط
39	XX.XXX.XXX.XXX	xxx.xxx.xxx.xx.xx.xxxxxxxxxxxxxxxxx.xxx	Xxxxxxx	18/12/2023	verified	متوسط
40	XX.XXX.XXX.XX	xx.xxx.xxx.xx.xx.xxxxxxxxxxxxxxxxx.xxx	Xxxxxxx	05/01/2023	verified	متوسط
41	XX.XXX.XXX.XX	xx.xxx.xxx.xx.xx.xxxxxxxxxxxxxxxxx.xxx	Xxxxxxx	27/12/2022	verified	متوسط
42	XX.XXX.XX.X	x.xx.xxx.xx.xx.xxxxxxxxxxxxxxxxx.xxx	Xxxxxxx	24/03/2024	verified	متوسط
43	XX.XXX.XX.XXX	xxx.xx.xxx.xx.xx.xxxxxxxxxxxxxxxxx.xxx	Xxxxxxx	13/08/2021	verified	متوسط
44	XX.XXX.XXX.XXX	xxx.xxx.xxx.xx.xx.xxxxxxxxxxxxxxxxx.xxx	Xxxxxxx	24/03/2024	verified	متوسط
45	XX.XXX.XXX.XX	xx.xxx.xxx.xx.xx.xxxxxxxxxxxxxxxxx.xxx	Xxxxxxx	27/12/2022	verified	متوسط
46	XX.XXX.XX.XX	xx.xx.xxx.xx.xx.xxxxxxxxxxxxxxxxx.xxx	Xxxxxxx	05/01/2023	verified	متوسط
47	XX.XXX.XXX.XXX	xxx.xxx.xxx.xx.xx.xxxxxxxxxxxxxxxxx.xxx	Xxxxxxx	13/03/2024	verified	متوسط
48	XX.XXX.XXX.XXX	xxx.xxx.xxx.xx.xx.xxxxxxxxxxxxxxxxx.xxx	Xxxxxxx	28/03/2024	verified	متوسط
49	XX.XXX.XXX.XX	xx.xxx.xxx.xx.xx.xxxxxxxxxxxxxxxxx.xxx	Xxxxxxx	18/12/2023	verified	متوسط
50	XX.XXX.XXX.XXX		Xxxxxxx	23/06/2022	verified	عالي
51	XX.XXX.XX.XX	xxxxxxxxxx.xxxxx-xxxxxx.xxx	Xxxxxxx	05/05/2021	verified	عالي
52	XX.XX.XX.XXX		Xxxxxxx	16/05/2022	verified	عالي
53	XX.XXX.XXX.XXX		Xxxxxxx	02/03/2019	verified	عالي
54	XX.XXX.XXX.XX	xxx-xx-xxx-xxx-xx.xxxxxxx-x.xxxxxxxxx.xxx	Xxxxxxx	16/05/2022	verified	متوسط
55	XX.XX.XXX.XXX	xxxxxx.xxxxxxxxxx.xxx	Xxxxxxx	29/10/2023	verified	عالي
56	XX.XXX.XXX.XXX	xxx.xxxxxxxxxxxxxx.xxx	Xxxxxxx	25/06/2022	verified	عالي
57	XX.XXX.XXX.XX		Xxxxxxx	22/02/2022	verified	عالي
58	XX.XXX.XXX.XXX		Xxxxxxx	04/03/2022	verified	عالي
59	XX.XXX.XXX.XXX		Xxxxxxx	16/05/2022	verified	عالي
60	XX.XXX.XX.XX	xxxxxxxx.xxxxxx-xx-xxxxxx.xx	Xxxxxxx	06/02/2024	verified	عالي
61	XX.XXX.XXX.XX		Xxxxxxx	25/03/2022	verified	عالي
62	XX.XX.XXX.XXX		Xxxxxxx	31/05/2021	verified	عالي
63	XX.XXX.XX.XXX		Xxxxxxx	18/12/2023	verified	عالي
64	XX.XXX.XX.XXX		Xxxxxxx	18/12/2023	verified	عالي
65	XX.XXX.XXX.XX		Xxxxxxx	18/12/2023	verified	عالي
66	XX.XXX.XXX.X		Xxxxxxx	18/12/2023	verified	عالي
67	XX.XX.X.XXX		Xxxxxxx	16/05/2022	verified	عالي
68	XX.XXX.XXX.XXX	xxxxx.xx-xx-xxx-xxx.xx	Xxxxxxx	16/05/2022	verified	عالي
69	XX.XXX.XX.XX	xxxx.xx-xx-xxx-xx.xxx	Xxxxxxx	16/05/2022	verified	عالي
70	XX.XXX.XX.X		Xxxxxxx	02/03/2019	verified	عالي
71	XX.XXX.XX.XXX	xxx-xx-xxx-xx-xxx.xx-xxxxxxxxx-x.xxxxxxx.xxxxxxxxx.xxx	Xxxxxxx	12/11/2022	verified	متوسط
72	XX.XX.XXX.XX	xx.xxx.xx.xx.xxxxx.xx.xx.xxxxxxx.xxxxxxx.xxx.xx	Xxxxxxx	16/05/2022	verified	عالي
73	XX.XXX.XXX.XXX	xxx.xxx.xxx.xx.xxxx.xx.xx.xxxxxxx.xxxxxxx.xxx.xx	Xxxxxxx	02/03/2019	verified	عالي
74	XX.XXX.XXX.XXX		Xxxxxxx	02/03/2019	verified	عالي
75	XX.XXX.XX.XX	xx.xxx.xx.xx.xxxxxx.xxxxxxxxx.xxx	Xxxxxxx	16/05/2022	verified	عالي
76	XX.XX.XXX.XXX	xxxxxxxxxxx.xxx	Xxxxxxx	04/07/2022	verified	عالي
77	XX.XXX.XX.XXX	xxx-xx-xxx-xx-xxx.xxxxx.xxx.xx.xxx	Xxxxxxx	16/05/2022	verified	عالي
78	XX.XXX.XX.XX		Xxxxxxx	16/05/2022	verified	عالي
79	XX.XX.XXX.XXX		Xxxxxxx	16/05/2022	verified	عالي
80	XX.XX.XX.XX	xxx-xx-xx-xx.xxxx.xxx.xxxx.xxxxxx.xxx	Xxxxxxx	16/05/2022	verified	عالي
81	XX.XX.XX.XXX		Xxxxxxx	10/02/2022	verified	عالي
82	XX.XXX.XX.XXX	xxxxxxxxx.xxxx.x-xxxxxxxxx.xx	Xxxxxxx	16/05/2022	verified	عالي
83	XX.XXX.XXX.XX		Xxxxxxx	31/03/2022	verified	عالي
84	XX.XXX.XXX.XX	xxx-xxx-xxx-xx.xxxx.xxxxxxxxxx.xx.xx	Xxxxxxx	22/02/2022	verified	عالي
85	XX.XX.X.XXX		Xxxxxxx	16/05/2022	verified	عالي
86	XX.XX.X.XXX		Xxxxxxx	16/05/2022	verified	عالي
87	XX.XXX.XX.XXX		Xxxxxxx	10/02/2022	verified	عالي
88	XX.XXX.XX.XXX		Xxxxxxx	10/02/2022	verified	عالي
89	XX.XXX.XX.XXX		Xxxxxxx	02/03/2019	verified	عالي
90	XX.XXX.XX.XX	xxxxxxxx.xxxxx.xxxxx	Xxxxxxx	15/02/2024	verified	عالي
91	XX.XXX.XXX.XX		Xxxxxxx	29/10/2023	verified	عالي
92	XX.XXX.XXX.XXX	xxx-xx-xxx-xxx-xxx.xxxx.xxxxxxxxxxx.xx	Xxxxxxx	02/03/2019	verified	عالي
93	XX.XXX.XXX.XXX	xxxxxxxxxxx-xxxxx.xxxx.xxxxxxx	Xxxxxxx	18/12/2023	verified	عالي
94	XX.XXX.XXX.XX	xx.xxx.xxx.xx.xxxxx.xxx	Xxxxxxx	10/02/2022	verified	متوسط
95	XXX.XXX.XXX.XXX		Xxxxxxx	11/03/2022	verified	عالي
96	XXX.XXX.XXX.X	xxxxx-xxxxxxx.xxxxxxxxxxxx.xxx	Xxxxxxx	13/04/2022	verified	عالي
97	XXX.XXX.XXX.XX	xxxxxx-xxx-xxx-xxx-xx.xxxxxxxxxxxx.xxx	Xxxxxxx	04/04/2022	verified	عالي
98	XXX.XXX.XX.XX		Xxxxxxx	22/03/2023	verified	عالي
99	XXX.XXX.XXX.XX		Xxxxxxx	22/03/2023	verified	عالي
100	XXX.XXX.XXX.XX	xxxxxxxxxxxxxx.xxx-xx.xxxx.xx.xx	Xxxxxxx	16/05/2022	verified	عالي
101	XXX.XXX.XX.XXX	xxxxxxxx.xxxxxx-xx-xxxxxx.xx	Xxxxxxx	06/02/2024	verified	عالي
102	XXX.XX.XXX.XX		Xxxxxxx	16/05/2022	verified	عالي
103	XXX.XX.XX.XX	xx.xx.xx.xxx.xxxxx.xx.xx.xxxxxxx.xxxxxxx.xxx.xx	Xxxxxxx	16/05/2022	verified	عالي
104	XXX.XXX.XXX.XXX		Xxxxxxx	31/03/2022	verified	عالي
105	XXX.XXX.XXX.XXX		Xxxxxxx	25/06/2022	verified	عالي
106	XXX.XX.XX.XXX		Xxxxxxx	13/03/2024	verified	عالي
107	XXX.XXX.XXX.XXX		Xxxxxxx	02/03/2019	verified	عالي
108	XXX.XX.XXX.XX	xxxxx-xxxxxx.xxxxxxxxxxxx.xxx	Xxxxxxx	18/06/2022	verified	عالي
109	XXX.XX.XXX.XX	xxxxxx-xxx-xx-xxx-xx.xxxxxxxxxxxx.xxx	Xxxxxxx	16/11/2023	verified	عالي
110	XXX.XX.XXX.XXX	xxxxxx-xxx-xx-xxx-xxx.xxxxxxxxxxxx.xxx	Xxxxxxx	14/01/2022	verified	عالي
111	XXX.XXX.XX.XX	xxxxxxxxxxx-xxx-xxx-xx-xx.xxxx-xxxxxxx.xxxxxxx.xx.xxxxxxxxxx.xxx	Xxxxxxx	16/05/2022	verified	عالي
112	XXX.XX.XXX.XXX		Xxxxxxx	02/03/2019	verified	عالي
113	XXX.XX.XXX.XXX	xxxxxxxxxxxx.xxxxxxxx.xxxxxxxxxxxxx.xxx.xx	Xxxxxxx	10/02/2022	verified	عالي
114	XXX.XXX.XXX.XXX	xxx.xxx.xxx.xxx.xx-xxxx.xxxx	Xxxxxxx	31/05/2021	verified	عالي
115	XXX.XXX.XX.XXX	xxx-xxx-xx-xxx.xxxxxx.xxxx.xx	Xxxxxxx	16/05/2022	verified	عالي
116	XXX.XXX.XXX.XXX		Xxxxxxx	16/05/2022	verified	عالي
117	XXX.XX.XXX.X		Xxxxxxx	16/05/2022	verified	عالي
118	XXX.XX.XX.XX		Xxxxxxx	20/04/2022	verified	عالي
119	XXX.XXX.XXX.X		Xxxxxxx	16/05/2022	verified	عالي
120	XXX.XXX.XXX.XX	xxxxxx.xxxxxxxxxxxxx.xx.xxx	Xxxxxxx	04/10/2022	verified	عالي
121	XXX.XX.XXX.XX		Xxxxxxx	02/03/2019	verified	عالي
122	XXX.XX.XX.XXX	xxx-xx-xx-xxx.xxxxxx.xxxxxxx.xxx	Xxxxxxx	29/10/2023	verified	عالي
123	XXX.XX.XXX.XXX	xxx-xx-xxx-xxx.xxxxxx.xxxx.xx	Xxxxxxx	29/10/2023	verified	عالي
124	XXX.XX.XXX.XXX	xxx-xxx-xx-xxx.xxxxxxx-xxx	Xxxxxxx	16/05/2022	verified	عالي
125	XXX.XXX.XXX.XX	xxx.xxxxxxx.xxxx	Xxxxxxx	03/10/2023	verified	عالي
126	XXX.XXX.X.XX		Xxxxxxx	31/05/2021	verified	عالي
127	XXX.XXX.X.XXX		Xxxxxxx	31/05/2021	verified	عالي
128	XXX.XXX.X.XXX		Xxxxxxx	31/05/2021	verified	عالي
129	XXX.XXX.X.XXX		Xxxxxxx	31/05/2021	verified	عالي
130	XXX.XXX.XXX.XX	xxx.x.xxxxxxx.xxxxx	Xxxxxxx	31/05/2021	verified	عالي
131	XXX.XX.XXX.XXX		Xxxxxxx	13/08/2021	verified	عالي
132	XXX.XXX.XX.XXX	xxx.xx.xxx.xxx.xx-xxxx.xxxx	Xxxxxxx	10/02/2022	verified	عالي
133	XXX.XX.XXX.XX	xxxx-xxxxxxxxx.xxxxxx.xxx	Xxxxxxx	16/05/2022	verified	عالي
134	XXX.XX.XX.XXX	xxxx.xxxxxxxx.xx	Xxxxxxx	05/05/2021	verified	عالي
135	XXX.XX.XX.XXX	xxxx.xxxxxxxxxxxxx.xxx	Xxxxxxx	05/05/2021	verified	عالي
136	XXX.XX.XX.XX		Xxxxxxx	21/12/2023	verified	عالي
137	XXX.XX.XX.XX	xxxxxx-xx.xxxx.xxx	Xxxxxxx	13/03/2022	verified	عالي
138	XXX.XX.XX.XXX	xxxx.xxxxxxxxxx.xxxxxx	Xxxxxxx	16/05/2022	verified	عالي
139	XXX.XX.XXX.XXX	xxx.xx.xxx.xxx.xxxxx.xxx	Xxxxxxx	10/02/2022	verified	متوسط
140	XXX.XXX.XXX.XXX		Xxxxxxx	22/02/2022	verified	عالي
141	XXX.XXX.XX.XX		Xxxxxxx	29/07/2022	verified	عالي
142	XXX.XXX.XX.XX	xxxxxxx.xxxxxxxxxxx.xx.xx	Xxxxxxx	22/02/2022	verified	عالي
143	XXX.XXX.XXX.XXX		Xxxxxxx	10/02/2022	verified	عالي
144	XXX.XXX.XX.XX		Xxxxxxx	29/10/2023	verified	عالي
145	XXX.XXX.XX.XXX		Xxxxxxx	29/10/2023	verified	عالي
146	XXX.XXX.XXX.XX	xxxxxxx.xxxxx-xxxxxxx-xxxx.xx	Xxxxxxx	29/10/2022	verified	عالي
147	XXX.XXX.XXX.XX		Xxxxxxx	31/05/2021	verified	عالي
148	XXX.XX.XXX.XX	xxx-xx-xxx-xx.xx.xxxxx.xxx.xx	Xxxxxxx	20/04/2022	verified	عالي
149	XXX.XX.XXX.XX	xxxxxxxxx.xx	Xxxxxxx	31/05/2021	verified	عالي
150	XXX.XXX.XXX.XX		Xxxxxxx	22/03/2023	verified	عالي
151	XXX.X.XX.XX	xxx-x-xx-xx-xxxx.xxxxxxxxxxxx.xxx	Xxxxxxx	26/06/2022	verified	عالي
152	XXX.X.XX.XXX	xxx-x-xx-xxx-xxxx.xxxxxxxxxxxx.xxx	Xxxxxxx	16/07/2022	verified	عالي
153	XXX.XX.XXX.XX	xxxxxx.xxxxxxxxxxxxxxxxxxxx.xxx	Xxxxxxx	25/03/2022	verified	عالي
154	XXX.XX.XXX.XX	xx.xxx.xx.xxx.xx-xxxx.xxxx	Xxxxxxx	31/05/2021	verified	عالي
155	XXX.XX.XXX.XX	xx.xxx.xx.xxx.xx-xxxx.xxxx	Xxxxxxx	10/02/2022	verified	عالي
156	XXX.XXX.XXX.X	xxxx.xxxxxx-xxxxx.xxx	Xxxxxxx	14/01/2022	verified	عالي
157	XXX.XXX.XXX.XX	xxxxx-xxxxxx.xxxxxxxxxxxx.xxx	Xxxxxxx	22/02/2022	verified	عالي
158	XXX.XXX.XX.X	xxxxxxx.xx	Xxxxxxx	26/06/2022	verified	عالي
159	XXX.XXX.XXX.XX	xxx-xxx-xxx-xx-xx.xxxxxxxx.xxx	Xxxxxxx	05/05/2021	verified	عالي
160	XXX.XXX.XXX.XX	xxxxx-xxxxxx.xxxxxxxxxxxx.xxx	Xxxxxxx	30/12/2022	verified	عالي
161	XXX.XXX.XXX.XXX	xxxxx-xxxxxxx.xxxxxxxxxxxx.xxx	Xxxxxxx	22/03/2022	verified	عالي
162	XXX.XXX.XXX.XXX	xxxxxxxxx.xxx	Xxxxxxx	04/03/2023	verified	عالي
163	XXX.XXX.XXX.XXX	xxxxxx-xxx-xxx-xxx-xxx.xxxxxxxxxxxx.xxx	Xxxxxxx	25/04/2022	verified	عالي
164	XXX.XXX.XXX.XXX	xxxxx-xxxxxxx.xxxxxxxxxxxx.xxx	Xxxxxxx	15/04/2022	verified	عالي
165	XXX.XXX.XXX.XXX	xxxxxx-xxx-xxx-xxx-xxx.xxxxxxxxxxxx.xxx	Xxxxxxx	25/04/2022	verified	عالي
166	XXX.XXX.XXX.X	xxxxxx-xxx-xxx-xxx-x.xxxxxxxxxxxx.xxx	Xxxxxxx	04/08/2022	verified	عالي
167	XXX.XXX.XXX.XX	xxxxx-xxxxxx.xxxxxxxxxxxx.xxx	Xxxxxxx	12/04/2022	verified	عالي
168	XXX.XXX.XXX.XXX	xxxxx-xxxxxxx.xxxxxxxxxxxx.xxx	Xxxxxxx	19/04/2022	verified	عالي
169	XXX.XXX.XXX.XXX	xxxxxx-xxx-xxx-xxx-xxx.xxxxxxxxxxxx.xxx	Xxxxxxx	22/02/2022	verified	عالي
170	XXX.XXX.XXX.XXX	xxxxxx-xxx-xxx-xxx-xxx.xxxxxxxxxxxx.xxx	Xxxxxxx	25/06/2022	verified	عالي
171	XXX.XXX.XXX.XXX	xxxxxx-xxx-xxx-xxx-xxx.xxxxxxxxxxxx.xxx	Xxxxxxx	26/11/2022	verified	عالي
172	XXX.XXX.XXX.XX	xxxxxx-xxx-xxx-xxx-xx.xxxxxxxxxxxx.xxx	Xxxxxxx	14/01/2022	verified	عالي
173	XXX.XXX.XXX.XXX	xxxxx-xxxxxxx.xxxxxxxxxxxx.xxx	Xxxxxxx	16/05/2022	verified	عالي
174	XXX.XXX.XXX.XX	xxxxx-xxxxxxx.xxxxxxxxxxxx.xxx	Xxxxxxx	06/03/2022	verified	عالي
175	XXX.XX.XX.XX	xxxxxxxx.xxxxxxxxxxxxxxxxxxxxxxxxxxx.xxx	Xxxxxxx	22/02/2022	verified	عالي
176	XXX.XX.XXX.XX		Xxxxxxx	22/02/2022	verified	عالي
177	XXX.XX.XXX.XX		Xxxxxxx	10/02/2022	verified	عالي
178	XXX.XXX.XXX.XX		Xxxxxxx	16/05/2022	verified	عالي
179	XXX.XXX.XXX.XX	xxxxxxxxxx.xxxxxx-xx-xxxxx.xxx	Xxxxxxx	03/10/2023	verified	عالي
180	XXX.XXX.XXX.XXX	xx--xxxxx-xxx.xxxxxxx	Xxxxxxx	16/05/2022	verified	عالي
181	XXX.XXX.XX.XX		Xxxxxxx	15/02/2024	verified	عالي
182	XXX.XXX.XX.XX		Xxxxxxx	22/02/2022	verified	عالي
183	XXX.XXX.XXX.XX	xxxxx-xxxxx.xxxxxxx.xxxx	Xxxxxxx	04/06/2023	verified	عالي
184	XXX.XXX.XX.X		Xxxxxxx	16/05/2022	verified	عالي
185	XXX.XXX.XXX.X		Xxxxxxx	02/03/2019	verified	عالي
186	XXX.XXX.XXX.XX		Xxxxxxx	16/05/2022	verified	عالي
187	XXX.XX.XX.XXX		Xxxxxxx	02/03/2019	verified	عالي
188	XXX.XXX.XXX.XXX		Xxxxxxx	16/05/2022	verified	عالي

TTP - Tactics, Techniques, Procedures (9)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

ID	Technique	الثغرات	متجه الوصول	النوع	الثقة
1	T1006	CWE-22	Path Traversal	predictive	عالي
2	T1059.007	CWE-79	Cross Site Scripting	predictive	عالي
3	TXXXX	CWE-XXX, CWE-XXX, CWE-XXX	Xxxxxxxxx Xxxx Xxxxxxxxxxx Xxxxxxxxxx	predictive	عالي
4	TXXXX	CWE-XX	Xxxxxxx Xxxxx Xx Xxxxxxxxxx Xxxxxxxxxx Xxxxxxxxx	predictive	عالي
5	TXXXX.XXX	CWE-XXX	Xxxx Xxxxxxxx	predictive	عالي
6	TXXXX	CWE-XXX	7xx Xxxxxxxx Xxxxxxxx	predictive	عالي
7	TXXXX	CWE-XX	Xxx Xxxxxxxxx	predictive	عالي
8	TXXXX	CWE-XXX	Xxxxxxxxxxx Xxxxxxxxxx	predictive	عالي
9	TXXXX	CWE-XXX	Xxxxxxxxxx Xx Xxxxxxx Xxxxx Xxxxxxx Xxxxxxxxx Xxxxxxxxxxx	predictive	عالي

IOA - Indicator of Attack (21)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

ID	الفئة	Indicator	النوع	الثقة
1	File	/cgi-bin/kerbynet	predictive	عالي
2	File	/uncpath/	predictive	متوسط
3	File	Deliver_SendMail.class.php	predictive	عالي
4	File	xxxxxxxxxxxxx.xxx	predictive	عالي
5	File	xxxx_xxxxxxxx.xxx	predictive	عالي
6	File	xxxxx.xxx	predictive	متوسط
7	File	xxxxxxxxx.xx	predictive	متوسط
8	File	xxxx.xxx/xxxxxxxxxxxxxx.xxx	predictive	عالي
9	File	xxxxxxxxxxxxxxxx.xx	predictive	عالي
10	File	xxxxxx.xxx	predictive	متوسط
11	File	xxxxxxxxxxxxx_xxxxx.xxxx	predictive	عالي
12	Argument	xxxxxxxxxxxxx	predictive	عالي
13	Argument	xxxxx.xxxx	predictive	متوسط
14	Argument	xxxx	predictive	واطئ
15	Argument	xxxxxxxx	predictive	متوسط
16	Argument	xx	predictive	واطئ
17	Argument	xxxx	predictive	واطئ
18	Argument	xxxxxxxx	predictive	متوسط
19	Argument	xxxxxxxx/xxxxxxxx	predictive	عالي
20	Input Value	%xx%xxxxx%xx/xxx/xxxxxx%xx%xx	predictive	عالي
21	Input Value	--	predictive	واطئ

المصادر (18)

The following list contains external sources which discuss the actor and the associated activities:

التالي ▸نظرة عامة◂ السابق

Do you know our Splunk app?

Download it now for free!